[3.7] tiff: Multiple vulnerabilities (CVE-2017-9936, CVE-2017-10688)
CVE-2017-9936: In LibTIFF 4.0.8, there is a memory leak in tif_jbig.c. A crafted TIFF document can lead to a memory leak resulting in a remote denial of service attack.
Reference:
http://bugzilla.maptools.org/show\_bug.cgi?id=2706
Patch:
https://github.com/vadz/libtiff/commit/fe8d7165956b88df4837034a9161dc5fd20cf67a
CVE-2017-10688: In LibTIFF 4.0.8, there is a assertion abort in the
TIFFWriteDirectoryTagCheckedLong8Array function in tif_dirwrite.c.
A crafted input will lead to a remote denial of service attack.
Reference:
http://bugzilla.maptools.org/show\_bug.cgi?id=2712
Patch:
https://github.com/vadz/libtiff/commit/6173a57d39e04d68b139f8c1aa499a24dbe74ba1
(from redmine: issue id 7481, created on 2017-07-06, closed on 2017-08-07)
- Relations:
- parent #7480 (closed)
- Changesets:
- Revision 86b18df8 by Francesco Colista on 2017-08-07T12:42:25Z:
main/tiff: security fix CVE-2017-9936 and CVE-2017-10688. Fixes #7481